An error occurred:
Close sidebar
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Xylok
Home Menu
info@xylok.io
© 2025
Xylok, LLC
Version: bugfix-XSS-85-d5bffe - rmfrev4
Open sidebar
Navigate
Top
Search
CCIs (
5137
)
Pages (
52/172
)
CCIs
Number
Definition
Status
Related
CCI-001531
The organization ensures that individuals requiring access to organizational information and information systems sign appropriate access agreements prior to being granted access.
Draft
PS-6
CCI-001532
Review and update the access agreements for organizational systems in accordance with organization-defined frequency.
Draft
PS-6
CCI-001533
Defines the frequency with which to review and update access agreements for organizational systems.
Draft
PS-6
CCI-001534
The organization ensures that access to information with special protection measures is granted only to individuals who have a valid access authorization that is demonstrated by assigned official government duties.
Draft
CCI-001535
The organization ensures that access to information with special protection measures is granted only to individuals who satisfy associated personnel security criteria.
Draft
CCI-001536
Verify that access to classified information requiring special protection is granted only to individuals who have a valid access authorization that is demonstrated by assigned official government duties.
Draft
PS-6(2)
CCI-001537
Verify that access to classified information requiring special protection is granted only to individuals who satisfy associated personnel security criteria.
Draft
PS-6(2)
CCI-001538
Verify that access to classified information requiring special protection is granted only to individuals who have read, understood, and signed a nondisclosure agreement.
Draft
PS-6(2)
CCI-001539
Establish personnel security requirements including security roles and responsibilities for external providers.
Draft
PS-7
CCI-001540
Document personnel security requirements.
Draft
PS-7
CCI-001541
Monitor provider compliance with personnel security requirements.
Draft
PS-7
CCI-001542
The organization employs a formal sanctions process for individuals failing to comply with established information security policies and procedures.
Draft
PS-8
CCI-001543
The organization disseminates the most recent information security program plan to appropriate entities in the organization that includes roles, responsibilities, management commitment, coordination among organizational entities, and compliance.
Draft
CCI-001544
Manage system authenticators by ensuring that authenticators have sufficient strength of mechanism for their intended use.
Draft
IA-5
CCI-001545
Defines a frequency for reviewing and updating the access control policy.
Draft
AC-1
CCI-001546
Defines a frequency for reviewing and updating the access control procedures.
Draft
AC-1
CCI-001547
Defines the frequency on which it will review information system accounts for compliance with account management requirements.
Draft
AC-2
CCI-001548
Defines the information flow control policies for controlling the flow of information within the system.
Draft
AC-4
CCI-001549
Defines the information flow control policies for controlling the flow of information between interconnected systems.
Draft
AC-4
CCI-001550
The organization defines approved authorizations for controlling the flow of information within the system.
Draft
AC-4
CCI-001551
The organization defines approved authorizations for controlling the flow of information between interconnected systems.
Draft
AC-4
CCI-001552
The organization defines policy that allows or disallows information flows based on changing conditions or operational considerations.
Draft
CCI-001553
Defines security or privacy policy filters that privileged administrators have the capability to enable and disable.
Draft
AC-4(10)
CCI-001554
Defines the security or privacy policy filters that privileged administrators have the capability to configure.
Draft
AC-4(11)
CCI-001555
The information system uniquely identifies destination domains for information transfer.
Draft
CCI-001556
The information system uniquely authenticates destination domains for information transfer.
Draft
CCI-001557
The information system tracks problems associated with the information transfer.
Draft
CCI-001558
Defines the security functions (deployed in hardware, software, and firmware) for which access must be authorized.
Draft
AC-6(1)
CCI-001559
The organization identifies the individuals authorized to change the value of associated security attributes.
Draft
AC-16(2)
CCI-001560
The organization identifies individuals (or processes acting on behalf of individuals) authorized to associate organization-defined security attributes with organization-defined objects.
Draft
AC-16(4)
Prev
1...
48
49
50
51
52
53
54
55
56
...172
Next